Experimental News Clipping Site

Tag: system integrity protection

  • Microsoft Security Blog: Analyzing CVE-2024-44243, a macOS System Integrity Protection bypass through kernel extensions

    by

    Kurt Seifried
    in

    Source URL: https://www.microsoft.com/en-us/security/blog/2025/01/13/analyzing-cve-2024-44243-a-macos-system-integrity-protection-bypass-through-kernel-extensions/ Source: Microsoft Security Blog Title: Analyzing CVE-2024-44243, a macOS System Integrity Protection bypass through kernel extensions Feedly Summary: Microsoft discovered a macOS vulnerability allowing attackers to bypass System Integrity Protection (SIP) by loading third party kernel extensions, which could lead to serious consequences, such as allowing attackers to install rootkits, create persistent…

  • Hacker News: TCC and the macOS Platform Sandbox Policy

    by

    system automation
    in

    Source URL: https://bdash.net.nz/posts/tcc-and-the-platform-sandbox-policy/ Source: Hacker News Title: TCC and the macOS Platform Sandbox Policy Feedly Summary: Comments AI Summary and Description: Yes Summary: The text delves into the Transparency, Consent, and Control (TCC) subsystem on macOS, outlining its functions in managing access to sensitive resources on the platform. It highlights the interplay between TCC and…

  • Hacker News: Unveiling Mac Security: Comprehensive Exploration of Sandboxing and AppData TCC

    by

    system automation
    in

    Source URL: https://imlzq.com/apple/macos/2024/08/24/Unveiling-Mac-Security-A-Comprehensive-Exploration-of-TCC-Sandboxing-and-App-Data-TCC.html Source: Hacker News Title: Unveiling Mac Security: Comprehensive Exploration of Sandboxing and AppData TCC Feedly Summary: Comments AI Summary and Description: Yes Summary: The text provides an in-depth analysis of vulnerabilities within macOS that allow for sandbox escape and logic exploitation. It discusses various techniques used to bypass security protections, focusing on…